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™f T ^ ACT: The meth0d f0r P reven,in g monitoring of postage indicia data which is 
sent from a postage metering vault to a remotely located digital printer over a 
coinmunicat.on l.nk between the meter vault and the digital printer The meter is 

eZ ? T ^ en , CryP,i0n eDgine f ° r enCryptin S P° sta 8 e indicia utilizing a 
encryptton key jhe digital printer includes a decryption engine for decrypting postage 
data received from sa.d meter utilizing the same encryption key a nd L^ /! 
postage mdtcta pursuant to the decr y pted postage in dicia L„ TiJ v ^ —$—^ 
^, C '" deS a key manager for generating new encryption pursuant t0 a t0 \ en which fc 
either randomly generated or generated pursuant to an algorithm by a similar 

^ maMSe [ in ,he digital P rinter which toke " ^ also used to 

generate the decryption key for the decryption engine. As a result, the encryption keys 
are the same. Upon power-up of the system or at such other preselected times, the print 
controller module of the digital printer sends out an encrypted message to the meter 
The message consist of a random number. The encryption/decryption engine of die 
vault decrypts the message. The vault then returns an encrypted new message to the 
pnnt controller which includes an encoded representation of the relatilS K 1 
messages. Upon receiving the new message from the vault, the print controller decry^s 

?rm"r P0 Ts:K. venfies * e reia,ionship - The print — is —is 
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whll " I X (I>: ThC meth ° d f ° r Preventin 8 monito ™g o f P^tage indicia 
dafc which is sent from a postage metering vault to a remotely located digtal printer 

nrnvid be ' Ween ^ meter vault Md me d «tal printer. The meterts 

eTrTpLT v VTtT ^ ** MCrypting P ° Stage ind ' cia data -^4 a 

dam received from said meter utilizing the same encryption key and then n r.n.A 
postage mdica pursuant to the decryp t postage : ^J^ T J ^ p rn 

"mrrWir^ ^7"'"""^ ^^^ pursuant to a LnZll 
either-randomly-generated-or-generated pursuant to an algorithm by a similar 



2 7 ma " ager l0CatCd ta di S ital P rinter wWch token is also used to 

generate the decrypt™ key for the decryption engine. As a result, the encryption keys 
_^thes^U ponpower-u pj^ 

control^ module of the digital printer sends out an encrypted message to the me™ 
The message cons.st of a random number. The encryption/decryption engine of «ne 
vault decrypts the message. The vault then returns an encrypted new mesiage to Z 
prm, con.ro ,er which includes an encoded representation of 1 ndatfonSSKtlS 
me new m new *™ the vault, the print controller decry! 

^7^ d T enfKS 4,16 re,ationship - The print controller is *« 

TITLE - TI (1): Method for identifying a metering accounting vault to digital printer 

Brief Summary Text - BSTX (3): A conventional postage meter is comprised of a 
ecure account system, a.sn tnmM . . J J, 

housed ,n a secure housing having tamper detection. The vault is physical s^cur^d 

operattonally unlocked to the printing mechanism. For example, ft s now 

use postage meters employing digital printing techniques. In sucn systemsTefauft and 

Brief Summary Text - BSTX (7): A new metering system includes a meter in h,,< 
co^nmumcatton with a digital printer for enabling th! meter to be Tocat^ demote from 
*e d, gltal pnnter . The meter inc , udes a vauU wh . ch rnicrTcomroUe™ 
m bus commumcatton with an application specific integrated circuit "$1^0 a 

nluralitv " CUred fa 3 Resistant hLsing. The A sfc S.udes a 

plural ty of control modules, some of which are an am ,nrin r J^gS' 

1 "L; 3 r n r , c o ntr °" er mod ""- anH a n — t±: ~m,ir TrS ! -. ! 

.ncludes a aecoaer/encoder ASIC sealed to the prin head of the diltftj Se, t£ 
decoder/encoder ASIC communicates to the printer controller mile y printer Z 
SrEr ^ Printer C ° ntr0ller Md ,he P" nt ««d decod'eXi 

Sp^fjSff" ^ 2 P™ 1 " bUS Which -mmunications^e 

nSrpy s s: ar ;r bed ' ^ ** camot easiiy be 



actual keys are not sent over the interface, rather, a token representing a specific key is 
passed. The key can be updated every time the printer controller clears the print head 
— decoder,_after_a.particular_number-of-print cycles r or-after-a particular number of state 
machine clock cycles. By increasing the number of encryption keys, the probability that 
the system will be compromised diminishes. 

Brief Summary Text - BSTX (9): In order to assure full and accurate accounting for the 
particular digital printer, upon power-up of the system or at such other preselected 
condition, the print controller module of the digital printer sends out an encrypted 
message to the meter. This message consists of an encrypted random number The 
encryption/decryption engine of the postage meter decrypts the message. The meter 
then returns an encrypted new message to the print controller which includes an 
encoded representation of the relationship of the two messages. Upon receiving the new 
message from the vault, the print controller decrypts the new message and verifies the 
relationship. The print controller is then enabled to print a postage indicia. 

Detailed Description Text - DETX (3): Referring to FIG. 2, the meter control system 
11 is secured within a secure housing 10. More specifically, the micro controller 13 
electrically communicates with an address bus All, a data bus Dll, a read control line 
' a wnte contro1 line W R> a data request control line DR and a data acknowledge 
control line DA. The memory unit 15 is also in electrical communication with the buses 
All and Dll, and control lines RD and WR. An address decoder module 30 
electrically communicates with the address bus All. The output from the address 
decoder 30 is directed to a data controller 33, timing controller 35 
encryption/decryption engine 37 , encryption kev manager 39 and shift register 41 The 
output of the address controller 30 operates in a conventional manner to enable and 
disable the data controller 33, timing controller 35, encryption engine 37. enc rvntinn 
^ey manager 39 and shift register 41 in response to a respective address generated by 
the micro controller 13. J 

Detailed Description Text - DETX (4): The data controller 33 electrically 
communicates with the address bus and data bus All and Dll, respectively and also 
with the read and write control lines RD and WR, respectively. In addition, the data 
controller 33 electrically communicates with the data request DR and data acknowledge 
DA control lines. The output from the data controller 33 is directed to an 
encryption/decryption engine 37 where the output data from the data controller 33 is 
encrypted using any one of several known encryption techniques, for example the DES 
encryption algorithm. The output from the encryption engine 37 is directed to the shift 
register 41. The timing controller 35 electrically communicates with the data controller 
33, the encryption/decryption engine 37 and shift register 41 for providing 
synchronized timing signals tothe data controller 33, the encryption/decryption engine 
37 and shift register 41. The timing controller 35 receives an input clock signal from a 
smte machine clock 43. In the most preferred configuration, an encryption kev manager 
39 is in electrical communication with the encrvptinn/d P rry D tion en g ine 37 "foTtfe 
purposeof providing added system security in a manner subsequently described. 
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Detailed Description Text - DETX (5): The printer mechanism 21 control ASIC 
-includes-a-shift-register-51- decryption/en^ 
converter 55. The output from the shift register 51 is directed to the input of the 
decryption/encryption engine 53. The output of the decryption/encryption engine 53 is 
directed to the print head format converter 55. The timing controller 56 electrically 
communicates with the shift register 51, the decryption/encryption engine 53, and the 
print head format converter 55 for providing synchronized timing signals to the data 
controller 33, the encryption/decryption engine 37 and shift register 41. The timing 
controller 56 receives an input clock signal from a state machine clock 59. In the most 
preferred configuration, a encryption key manager 61 is in electrical communication 
with the encryption /decryption engine 53 for the purpose of providing added system 
security and communicating with the encryption key manager 39 of the meter control 
system 11. The printer control ASIC electronically communicates with the print 
elements 63. Also provided is a verification circuit 66 which receives data from the 
shift register 41 only during system power-up and outputs data to the 
decryption/encryption engine 53. 

Detailed Description Text - DETX (6): In operation, upon power-up of the system or at 
such other selected times, the verification circuit in response to a power-up print 
command (Print Cmmd) from the meter 10 outputs a random number message to the 
decryption/encryption engine 37 which encrypts the message in response to the power- 
up print command. The encrypted message is sent out to the meter. The 
encryption/decryption engine 37 of the vault decrypts the message in response to the 
print command. The micro controller then returns an encrypted new message to the 
print controller which includes the encoded representation of the relationship of the two 
messages. Upon receiving the new message from the vault, the print controller decrypts 
the new message and verifies the relationship in response to a new print command. The 
print controller is then enabled to print a postage indicia. The print controller is now 
enabled resulting in the engine 37 being set in an encryption mode and engine 53 being 
set in a decryption mode. 

Detailed Description Text - DETX (7): Upon initiation of a print cycle, the micro 
controller 13 generates the appropriate address and generates an active write signal. 
The less significant bits (LBS) of the generated address is directed to the address 
decoder 30 and the most significant bits (MBS) are directed to the data controller 33. In 
response, the address decoder 30 generates the enabling signals for the data controller 
33, timing controller 35, encryption engine 37 and shift register 41. The data controller 
33 then generates a data request which then is received by the micro controller 13. The 
micro controller 13 then generates a read enable signal which enables the micro 
controller 13 to read the image data from the memory unit 15 and place the appropriate 
data on the data bus Dll. That data is read by the data controller 33 which reformats 
the 32-bit data messages into 64-bit data messages and passes the 64-bit data messages 
jo the encryption engine 37. The encr y ption en g ine 37 then encr ypts the data using any 
suitable encryption algorithm and the encryption key supplied by the encryption key 
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parallel forr? and trfrlsfers ^ eT^, 1, ' enCryp,ed data back int0 «-«* 

- «*«.•. ra vs»r^ r^rr Ltra , p " n,,ng ( — 

interface, rather a token reore^tinJ T r 1 31 keyS are not sent over ^ 

made to randomly select a kev a J wT ,iT y ' pnnt nead de «"ler can be 

is <tac^,Ti y ^b^^2S COntr °" er t0 C ° mply ' 0nce the 

print head and W anv ^uil^Z f " By sealin * d ^°der «> the 

routing layers P o XS^cSX.^, ™ ^ T° PaCkage> Wilizin S ^ inner 
monitor, and ■£^£^£2"' - C * ica ' s ^ls from unwanted 

SSSaJS^S ^ ^ met6f With ~ fof encryptin./decrvbtins 



Claims Text - CLTX (3): providing said printer with means for encrypting/decrypting 
-PQStagedata_utilizing,said. encryptionkeY : 



Claims Text - CLTX (4): generating a random number and encrypting said random 
number at said printer; — 

Claims Text - CLTX (5): transmitting said encrypted random number to said controller; 

Claims Text - CLTX (6): decrypting said random number and re-encrvot ing said 
rajig^ number at said controller in such a way to have a known relationship to said 
°" ginal random number and encrypting said known relationship in the same manner as 
the re -encryption of the random number; 

Claims Text - CLTX (7): transmitting said re -encrypted random numbe r and said 
encrypted known relationship to said printer; ~~ 

Claims Text - CLTX (8): decrypting said re -encrypted random number and said known 
relationship and verifying said known relationship at said printer; 

Claims Text - CLTX (9): providing said printer with means of generating a token and 
™ c " cr yP tlon ke V manager for gene rating said encryp tion kev pursu ant to said 
token, said token corresponding to a key generation method based on at least one totally 
random variable; y 

Claims Text - CLTX (12): providing said controller with an encryption k ey manager 
tor generatin g an encryption key pursuant to said token; 

Claims Text - CLTX (13): generating said encryption key by said encryption kev 
manager in said contr oller p ursua n t to said token such that said encryp tion kj nf hJ. 
of said encryption kev manors »ro ivw;^]- ind " x 

Claims Text - CLTX (16): said postage meter having a micro controller and encryption- 
decryption means for encr ypting and decrypting data p ur suant to an encrypti on key in 
response to command signals from said micro controller; 

Claims Text - CLTX (17): said digital printer having encryption-decryption means for 
encrypting and decrypting data pursuant to an encryp tion to, in response to command 
signals from said micro controller; 

Claims Text - CLTX (19): said digital printer having means for generating a random 
number and causing said random number to he encrypted and causinTlSi 
communication means t o com mun i cate said random number to said meteTT^^ J 
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Claims Text - CLTX (20): said micro controller having means for causing said meter 

gncrypnon-decrvmion mean, to ^ ..t, ^ m ^ .J^^^ 

said~ random number in a desired r^r ^^ d _ cam - ^ 

dec ypuon m eans t o encrypt said en^H „JL --^ ^ g 

cause a, d communtcation means to communicate said encoded random numbeT and 

sa.d relattonshtp to said printer enrryprim.^,^^ me ~ """"^ a " d 

Claims Text - CLTX (21): said digital printer having an encryption kev manner mP ™ 

^^S^Z for 8enerating 3 as a fi,nction of said ^ 
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